Vulnerabilities (CVE)

Filtered by vendor Conceptronic Subscribe
Filtered by product Cipcamptiwl Web Firmware
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2018-6408 1 Conceptronic 3 Cipcamptiwl, Cipcamptiwl Firmware, Cipcamptiwl Web Firmware 2024-11-21 6.8 MEDIUM 8.8 HIGH
An issue was discovered on Conceptronic CIPCAMPTIWL V3 0.61.30.21 devices. CSRF exists in hy-cgi/user.cgi, as demonstrated by changing an administrator password or adding a new administrator account.
CVE-2018-6407 1 Conceptronic 3 Cipcamptiwl, Cipcamptiwl Firmware, Cipcamptiwl Web Firmware 2024-11-21 7.8 HIGH 7.5 HIGH
An issue was discovered on Conceptronic CIPCAMPTIWL V3 0.61.30.21 devices. An unauthenticated attacker can crash a device by sending a POST request with a huge body size to /hy-cgi/devices.cgi?cmd=searchlandevice. The crash completely freezes the device.